CVSS 3.1 Score 5.9 of 10 (medium)


Published Mar 3, 2024
Updated: Mar 4, 2024
CWE ID 327


CVE-2024-27255 is a vulnerability found in IBM MQ Operator versions 2.0.0 LTS, 2.0.18 LTS, 3.0.0 CD, 3.0.1 CD, 2.4.0 through 2.4.7, 2.3.0 through 2.3.3, 2.2.0 through 2.2.2, and 2.3.0 through 2.3.3 that utilizes weaker cryptographic algorithms than expected, potentially allowing an attacker to decrypt highly sensitive information without the need for any privileges or user interaction over a network connection, posing a high risk to the confidentiality of the organization's data and information security measures in place (IBM X-Force ID: 283905).

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-27255 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options